ATE431944T1 - FAULT-TOLERANT COMPUTER-CONTROLLED SYSTEM - Google Patents

FAULT-TOLERANT COMPUTER-CONTROLLED SYSTEM

Info

Publication number
ATE431944T1
ATE431944T1 AT03001308T AT03001308T ATE431944T1 AT E431944 T1 ATE431944 T1 AT E431944T1 AT 03001308 T AT03001308 T AT 03001308T AT 03001308 T AT03001308 T AT 03001308T AT E431944 T1 ATE431944 T1 AT E431944T1
Authority
AT
Austria
Prior art keywords
controlled system
tolerant computer
fault
data item
actuator
Prior art date
Application number
AT03001308T
Other languages
German (de)
Inventor
Thomas Michael Sailer
Original Assignee
Supercomputing Systems Ag
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Supercomputing Systems Ag filed Critical Supercomputing Systems Ag
Application granted granted Critical
Publication of ATE431944T1 publication Critical patent/ATE431944T1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/16Error detection or correction of the data by redundancy in hardware
    • G06F11/18Error detection or correction of the data by redundancy in hardware using passive fault-masking of the redundant circuits
    • G06F11/183Error detection or correction of the data by redundancy in hardware using passive fault-masking of the redundant circuits by voting, the voting not being performed by the redundant components
    • G06F11/184Error detection or correction of the data by redundancy in hardware using passive fault-masking of the redundant circuits by voting, the voting not being performed by the redundant components where the redundant components implement processing functionality
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B9/00Safety arrangements
    • G05B9/02Safety arrangements electric
    • G05B9/03Safety arrangements electric with multiple-channel loop, i.e. redundant control systems

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Quality & Reliability (AREA)
  • General Engineering & Computer Science (AREA)
  • Automation & Control Theory (AREA)
  • Hardware Redundancy (AREA)
  • Multi Processors (AREA)
  • Safety Devices In Control Systems (AREA)

Abstract

An error tolerant computer controlled system comprises several computers (P0, P1, P2) working redundantly and controlling actuators (A0, A1, A2) based on signals from sensors (S0, S1, S2) and input devices (V0, V1). Each data item emitted by each computer is simultaneously sent through differing communication paths to each actuator, such that in normal operation each actuator receives each data item through several paths. This system continues to function properly even in case of a failure without requiring any re-routing of the data items, which makes it easier to design, analyze and test and thereby increases its reliability. <IMAGE>
AT03001308T 2003-01-23 2003-01-23 FAULT-TOLERANT COMPUTER-CONTROLLED SYSTEM ATE431944T1 (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
EP03001308A EP1443399B1 (en) 2003-01-23 2003-01-23 Fault tolerant computer controlled system

Publications (1)

Publication Number Publication Date
ATE431944T1 true ATE431944T1 (en) 2009-06-15

Family

ID=32605236

Family Applications (1)

Application Number Title Priority Date Filing Date
AT03001308T ATE431944T1 (en) 2003-01-23 2003-01-23 FAULT-TOLERANT COMPUTER-CONTROLLED SYSTEM

Country Status (10)

Country Link
US (1) US7263630B2 (en)
EP (1) EP1443399B1 (en)
JP (1) JP4309296B2 (en)
CN (1) CN100363899C (en)
AT (1) ATE431944T1 (en)
AU (1) AU2004200226B2 (en)
CA (1) CA2455478A1 (en)
DE (1) DE60327687D1 (en)
HK (1) HK1069890A1 (en)
RU (1) RU2333528C2 (en)

Families Citing this family (44)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
BRPI0407491A (en) 2003-02-15 2006-02-14 Gulfstream Aerospace Corp methods for reducing the likelihood of formation of deep vein thrombosis, for raising atmospheric oxygen concentration, and for nitrogen concentration, for monitoring partial oxygen pressure, for controlling the degree of oxygen / nitrogen displacement of arrival air in response to partial oxygen pressure, to remix the atmosphere in the occupied and unoccupied areas of the aircraft, to lower partial oxygen pressure below the natural level, and to adjust nitrogen and oxygen concentrations within regions of an aircraft
DE102004049558A1 (en) * 2004-10-12 2006-04-27 Volkswagen Ag Method and device for controlling a motor vehicle lighting
US7337044B2 (en) * 2004-11-10 2008-02-26 Thales Canada Inc. Dual/triplex flight control architecture
US20060176823A1 (en) * 2005-02-10 2006-08-10 Barajas Leandro G Smart actuator topology
JP2006344087A (en) * 2005-06-10 2006-12-21 Hitachi Ltd Task management device for controller and task management method for controller
DE102005060720A1 (en) * 2005-12-19 2007-06-28 Siemens Ag Monitoring system, in particular vibration monitoring system and method for operating such a system
BRPI0706593A2 (en) * 2006-01-17 2011-04-05 Gulfstream Aerospace Corp system and method for an integrated backup control system
WO2007084679A2 (en) * 2006-01-17 2007-07-26 Gulfstream Aerospace Corporation Apparatus and method for backup control in a distributed flight control system
FR2907234B1 (en) * 2006-10-13 2009-01-16 Thales Sa METHOD AND DEVICE FOR IDENTIFYING A MAIN FAILURE SENSOR BELONGING TO A CONTROL CHAIN
SE530628C3 (en) * 2006-12-12 2008-08-19 Scania Cv Ab articulation control
US8948960B2 (en) * 2007-11-30 2015-02-03 Honeywell International Inc. Systems and methods for arbitrating sensor and actuator signals in a multi-channel control system
US8255732B2 (en) * 2008-05-28 2012-08-28 The United States Of America, As Represented By The Administrator Of The National Aeronautics And Space Administration Self-stabilizing byzantine-fault-tolerant clock synchronization system and method
FR2941551B1 (en) 2009-01-28 2011-06-03 Airbus France ELECTRONIC CIRCUIT FOR DETERMINING A DATA REPRESENTATIVE OF AN AIR PARAMETER AND SYSTEM COMPRISING SUCH A CIRCUIT
FR2941912B1 (en) * 2009-02-10 2011-02-18 Airbus France FLIGHT CONTROL SYSTEM AND AIRCRAFT COMPRISING SAME
CN101576835B (en) * 2009-05-31 2010-12-01 北京控制工程研究所 Two-round communication method meeting Byzantine protocol
US8228009B2 (en) * 2009-07-27 2012-07-24 Parker-Hannifin Corporation Twin motor actuator
JP4956603B2 (en) * 2009-12-04 2012-06-20 株式会社東芝 Distributed system and logical time adjustment method
EP2442229A1 (en) * 2010-07-28 2012-04-18 Siemens Aktiengesellschaft High reliability method of data processing, and controller unit
FR2992122B1 (en) * 2012-06-15 2014-06-27 Thales Sa DEVICE FOR SECURE CONVERSION OF DIGITAL CONTROLS IN ANALOGUE POWER SIGNALS FOR AIRCRAFT
KR101704787B1 (en) * 2014-12-31 2017-02-22 주식회사 효성 Dual apparatus for controller
WO2016160501A1 (en) * 2015-03-27 2016-10-06 Astronautics Corporation Of America Auxiliary security system for aircraft black box system
US9764853B2 (en) * 2015-04-01 2017-09-19 The Boeing Company Motionless flight control surface skew detection system
US9563523B2 (en) * 2015-04-16 2017-02-07 GM Global Technology Operations LLC Architecture for scalable fault tolerance in integrated fail-silent and fail-operational systems
US10025344B2 (en) 2015-04-21 2018-07-17 The United States Of America As Represented By The Administrator Of Nasa Self-stabilizing distributed symmetric-fault tolerant synchronization protocol
US10328872B2 (en) * 2016-06-29 2019-06-25 Hamilton Sundstrand Corporation Methodology for simplification of aircraft harnessing in multi-redundant control systems
CN106354141B (en) * 2016-11-02 2019-09-13 北京汽车集团有限公司 A kind of Ride Control System and method
US10248430B2 (en) * 2016-12-16 2019-04-02 Hamilton Sundstrand Corporation Runtime reconfigurable dissimilar processing platform
JP2019070902A (en) * 2017-10-06 2019-05-09 横河電機株式会社 Control system, control method and equalization device
JP2019179964A (en) * 2018-03-30 2019-10-17 株式会社Subaru aircraft
US12006048B2 (en) 2018-05-31 2024-06-11 Joby Aero, Inc. Electric power system architecture and fault tolerant VTOL aircraft using same
WO2019232472A1 (en) 2018-05-31 2019-12-05 Joby Aero Inc. Electric power system architecture and fault tolerant vtol aircraft using same
WO2020009871A1 (en) 2018-07-02 2020-01-09 Joby Aero, Inc. System and method for airspeed determination
WO2020061085A1 (en) * 2018-09-17 2020-03-26 Joby Aero, Inc. Aircraft control system
EP3626571B1 (en) * 2018-09-18 2022-08-17 KNORR-BREMSE Systeme für Nutzfahrzeuge GmbH Control architecture for a vehicle
EP3891067B1 (en) 2018-12-07 2024-01-17 Joby Aero, Inc. Aircraft control system and method
US20200331602A1 (en) 2018-12-07 2020-10-22 Joby Aero, Inc. Rotary airfoil and design method therefor
US10845823B2 (en) 2018-12-19 2020-11-24 Joby Aero, Inc. Vehicle navigation system
US11230384B2 (en) 2019-04-23 2022-01-25 Joby Aero, Inc. Vehicle cabin thermal management system and method
WO2020219747A2 (en) 2019-04-23 2020-10-29 Joby Aero, Inc. Battery thermal management system and method
JP2022530463A (en) 2019-04-25 2022-06-29 ジョビー エアロ インク Vertical takeoff and landing aircraft
US11273906B2 (en) * 2019-05-10 2022-03-15 Honeywell International Inc. Redundant fly-by-wire systems with fault resiliency
GB2585185B (en) * 2019-06-24 2021-12-08 Windracers Ltd Method of controlling an aircraft
WO2021248116A1 (en) 2020-06-05 2021-12-09 Joby Aero, Inc. Aircraft control system and method
US12126683B2 (en) 2021-08-31 2024-10-22 Masimo Corporation Privacy switch for mobile communications device

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4532630A (en) * 1981-05-28 1985-07-30 Marconi Avionics Limited Similar-redundant signal systems
EP0110885B1 (en) * 1982-06-16 1989-09-06 The Boeing Company Autopilot flight director system
JPS59212902A (en) * 1983-05-18 1984-12-01 Hitachi Ltd Multiplexing controller
US5357425A (en) * 1991-02-13 1994-10-18 General Electric Company Method and apparatus for controlling a real time system
US5648898A (en) * 1994-12-19 1997-07-15 Caterpillar Inc. Method for programming a vehicle monitoring and control system
US6085350A (en) * 1998-03-04 2000-07-04 Motorola, Inc. Single event upset tolerant system and method
EP1224117B1 (en) 1999-10-26 2004-01-21 Franz Bucher Aircraft and method for operating an aircraft
US6883065B1 (en) * 2001-11-15 2005-04-19 Xiotech Corporation System and method for a redundant communication channel via storage area network back-end

Also Published As

Publication number Publication date
EP1443399A1 (en) 2004-08-04
AU2004200226B2 (en) 2008-10-30
US7263630B2 (en) 2007-08-28
HK1069890A1 (en) 2005-06-03
US20040195460A1 (en) 2004-10-07
JP4309296B2 (en) 2009-08-05
CN1550988A (en) 2004-12-01
JP2004342077A (en) 2004-12-02
DE60327687D1 (en) 2009-07-02
CA2455478A1 (en) 2004-07-23
CN100363899C (en) 2008-01-23
RU2333528C2 (en) 2008-09-10
EP1443399B1 (en) 2009-05-20
AU2004200226A1 (en) 2004-08-12
RU2004102029A (en) 2005-07-10

Similar Documents

Publication Publication Date Title
DE60327687D1 (en) Fault-tolerant computer-controlled system
ATE403185T1 (en) REDUNDANCY CONTROL METHOD AND DEVICE FOR SECURE COMPUTER UNITS
EP1857935A1 (en) Fault tolerant data bus node in a distributed system
SE0001910L (en) Control Systems
US9919419B2 (en) Robot system and emergency stop processing apparatus
US10372364B2 (en) Storage enclosure with daisy-chained sideband signal routing and distributed logic devices
JP2020506472A (en) Redundant processor architecture
JP2008545195A (en) Technology that uses a single IC for both storage device communication and peer-to-peer communication in a data storage system
JP2008158666A (en) Multipath system for storage device, its failure identification method, and program
US8510594B2 (en) Control system, control computer and method for operating a control system
US9053245B2 (en) Partial redundancy for I/O modules or channels in distributed control systems
JP2007233793A (en) Disk enclosure device
JP2011145208A (en) Substrate
WO2008024368A3 (en) Article having multi-functional elements
US20180046531A1 (en) Safety-relevant computer system
RU2568392C2 (en) Device for control over system redundant with majority elements
JP6288609B2 (en) Redundant controller
JP2007323190A (en) Calculation control system for performing data communication and its communication method
JP2006276957A (en) Safety system
JP4629704B2 (en) Electronics
KR101333468B1 (en) Method for checking channel id of flight control computer and computer readable recording medium to store the computer program to run the same method
JP2013088893A (en) Train operation management system
JP2018160030A (en) Control device, control method and fault-tolerant device
JP6085386B1 (en) Platform program and vehicle monitoring system
JP5024597B2 (en) Communication system with redundant power supply

Legal Events

Date Code Title Description
RER Ceased as to paragraph 5 lit. 3 law introducing patent treaties